The vulnerability of the ssvpn_config_mod function in the /vpn/list_ip_network.php web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 router integrated software allows a malicious actor to execute arbitrary commands.
The vulnerability of the ssvpnconfigmod function in the /vpn/listipnetwork.php web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 router integrated software is related to the failure to eliminate special elements used in commands when processing parameters like template and...